From 962155099b037f589bd8ba786226cec5d94269f7 Mon Sep 17 00:00:00 2001 From: Christopher Tauchen Date: Fri, 8 May 2026 16:58:09 +0100 Subject: [PATCH] Rewrite observability page descriptions in next trees Refresh frontmatter description for all 62 observability pages across calico/, calico-enterprise/, and calico-cloud/. Each page now names its canonical product, fits within 200 characters, drops forbidden verbs (enable/disable/teaching), and stays unique across products. Disambiguates Calico Enterprise (in-cluster Manager UI, in-cluster Elasticsearch and Kibana) from Calico Cloud (web console for connected clusters, managed Elasticsearch). Calico Open Source uses the smaller Whisker / Goldmane vocabulary. Next trees only -- versioned mirrors will be applied after review. --- calico-cloud/observability/alerts.mdx | 2 +- calico-cloud/observability/create-custom-dashboard.mdx | 2 +- calico-cloud/observability/dashboards.mdx | 2 +- calico-cloud/observability/elastic/archive-storage.mdx | 2 +- calico-cloud/observability/elastic/audit-overview.mdx | 2 +- calico-cloud/observability/elastic/bgp.mdx | 2 +- calico-cloud/observability/elastic/dns/dns-logs.mdx | 2 +- calico-cloud/observability/elastic/dns/filtering-dns.mdx | 2 +- calico-cloud/observability/elastic/dns/index.mdx | 2 +- calico-cloud/observability/elastic/flow/aggregation.mdx | 2 +- calico-cloud/observability/elastic/flow/datatypes.mdx | 2 +- calico-cloud/observability/elastic/flow/filtering.mdx | 2 +- calico-cloud/observability/elastic/flow/hep.mdx | 2 +- calico-cloud/observability/elastic/flow/index.mdx | 2 +- calico-cloud/observability/elastic/flow/processpath.mdx | 2 +- calico-cloud/observability/elastic/flow/tcpstats.mdx | 2 +- calico-cloud/observability/elastic/index.mdx | 2 +- calico-cloud/observability/elastic/l7/configure.mdx | 2 +- calico-cloud/observability/elastic/l7/datatypes.mdx | 2 +- calico-cloud/observability/elastic/l7/index.mdx | 2 +- calico-cloud/observability/elastic/overview.mdx | 2 +- calico-cloud/observability/index.mdx | 2 +- calico-cloud/observability/iptables.mdx | 2 +- calico-cloud/observability/kibana.mdx | 2 +- calico-cloud/observability/kube-audit.mdx | 2 +- calico-cloud/observability/packetcapture.mdx | 2 +- calico-cloud/observability/visualize-traffic.mdx | 2 +- calico-enterprise/observability/alerts.mdx | 2 +- calico-enterprise/observability/dashboards.mdx | 2 +- calico-enterprise/observability/elastic/archive-storage.mdx | 2 +- calico-enterprise/observability/elastic/audit-overview.mdx | 2 +- calico-enterprise/observability/elastic/bgp.mdx | 2 +- calico-enterprise/observability/elastic/dns/dns-logs.mdx | 2 +- calico-enterprise/observability/elastic/dns/filtering-dns.mdx | 2 +- calico-enterprise/observability/elastic/dns/index.mdx | 2 +- calico-enterprise/observability/elastic/flow/aggregation.mdx | 2 +- calico-enterprise/observability/elastic/flow/datatypes.mdx | 2 +- calico-enterprise/observability/elastic/flow/filtering.mdx | 2 +- calico-enterprise/observability/elastic/flow/hep.mdx | 2 +- calico-enterprise/observability/elastic/flow/index.mdx | 2 +- calico-enterprise/observability/elastic/flow/processpath.mdx | 2 +- calico-enterprise/observability/elastic/flow/tcpstats.mdx | 2 +- calico-enterprise/observability/elastic/index.mdx | 2 +- calico-enterprise/observability/elastic/l7/configure.mdx | 2 +- calico-enterprise/observability/elastic/l7/datatypes.mdx | 2 +- calico-enterprise/observability/elastic/l7/index.mdx | 2 +- calico-enterprise/observability/elastic/overview.mdx | 2 +- calico-enterprise/observability/elastic/rbac-elasticsearch.mdx | 2 +- calico-enterprise/observability/elastic/retention.mdx | 2 +- calico-enterprise/observability/elastic/troubleshoot.mdx | 2 +- calico-enterprise/observability/get-started-cem.mdx | 2 +- calico-enterprise/observability/index.mdx | 2 +- calico-enterprise/observability/iptables.mdx | 2 +- calico-enterprise/observability/kibana.mdx | 2 +- calico-enterprise/observability/kube-audit.mdx | 2 +- calico-enterprise/observability/packetcapture.mdx | 2 +- .../observability/review-unused-network-policies.mdx | 2 +- calico-enterprise/observability/visualize-traffic.mdx | 2 +- calico/observability/enable-whisker.mdx | 2 +- calico/observability/flow-logs-api.mdx | 2 +- calico/observability/index.mdx | 2 +- calico/observability/view-flow-logs.mdx | 2 +- 62 files changed, 62 insertions(+), 62 deletions(-) diff --git a/calico-cloud/observability/alerts.mdx b/calico-cloud/observability/alerts.mdx index 539b5f05ec..836ffac187 100644 --- a/calico-cloud/observability/alerts.mdx +++ b/calico-cloud/observability/alerts.mdx @@ -1,5 +1,5 @@ --- -description: Manage alerts and events for Calico Enterprise features. +description: Configure alerts and review alert events for Calico Cloud features in the web console or CLI. Use built-in templates for visibility and security signals. --- # Manage alerts diff --git a/calico-cloud/observability/create-custom-dashboard.mdx b/calico-cloud/observability/create-custom-dashboard.mdx index fce667d3dc..6442d20491 100644 --- a/calico-cloud/observability/create-custom-dashboard.mdx +++ b/calico-cloud/observability/create-custom-dashboard.mdx @@ -1,5 +1,5 @@ --- -description: Create a custom dashboard +description: Build custom dashboards in the Calico Cloud web console by importing cards from standard dashboards or constructing new cards from flow, DNS, and L7 fields. --- import Screenshot from '/src/___new___/components/Screenshot' diff --git a/calico-cloud/observability/dashboards.mdx b/calico-cloud/observability/dashboards.mdx index 85ae2f70a5..f6bfff24c9 100644 --- a/calico-cloud/observability/dashboards.mdx +++ b/calico-cloud/observability/dashboards.mdx @@ -1,5 +1,5 @@ --- -description: Dashboards help you see what's going on in your cluster. See how your cluster is performing and visualize your system's log data. +description: Visualize connected cluster activity in the Calico Cloud web console with prebuilt and custom dashboards for cluster health, policy, DNS, and L7 data. --- import Screenshot from '/src/___new___/components/Screenshot' diff --git a/calico-cloud/observability/elastic/archive-storage.mdx b/calico-cloud/observability/elastic/archive-storage.mdx index ac3ea31be9..2082c6140c 100644 --- a/calico-cloud/observability/elastic/archive-storage.mdx +++ b/calico-cloud/observability/elastic/archive-storage.mdx @@ -1,5 +1,5 @@ --- -description: Archive logs to Syslog, Splunk, or Amazon S3 for maintaining compliance data. +description: Forward Calico Cloud flow, DNS, audit, and L7 logs to Syslog, Splunk, or Amazon S3 to retain compliance data beyond managed retention windows. --- # Archive logs diff --git a/calico-cloud/observability/elastic/audit-overview.mdx b/calico-cloud/observability/elastic/audit-overview.mdx index ea03e7c4c6..b437b63c72 100644 --- a/calico-cloud/observability/elastic/audit-overview.mdx +++ b/calico-cloud/observability/elastic/audit-overview.mdx @@ -1,5 +1,5 @@ --- -description: Calico Cloud audit logs provide data on changes to resources. +description: Calico Cloud audit logs record changes to network policies, tiers, network sets, host endpoints, and other resources across connected clusters. --- # Audit logs diff --git a/calico-cloud/observability/elastic/bgp.mdx b/calico-cloud/observability/elastic/bgp.mdx index 0d44aff407..9d8e8f8942 100644 --- a/calico-cloud/observability/elastic/bgp.mdx +++ b/calico-cloud/observability/elastic/bgp.mdx @@ -1,5 +1,5 @@ --- -description: Key/value pairs of BGP activity logs and how to construct queries. +description: Reference of key/value fields in Calico Cloud BGP activity logs in Elasticsearch, with sample queries for IPv4, IPv6, and per-node lookups. --- # BGP logs diff --git a/calico-cloud/observability/elastic/dns/dns-logs.mdx b/calico-cloud/observability/elastic/dns/dns-logs.mdx index 621189e2a2..3c49b15863 100644 --- a/calico-cloud/observability/elastic/dns/dns-logs.mdx +++ b/calico-cloud/observability/elastic/dns/dns-logs.mdx @@ -1,5 +1,5 @@ --- -description: Key/value pairs of DNS activity logs and how to construct queries. +description: Reference of key/value fields in Calico Cloud DNS activity logs in Elasticsearch, with guidance for building client and query lookups. --- # Query DNS logs diff --git a/calico-cloud/observability/elastic/dns/filtering-dns.mdx b/calico-cloud/observability/elastic/dns/filtering-dns.mdx index c40c2fef01..6705170172 100644 --- a/calico-cloud/observability/elastic/dns/filtering-dns.mdx +++ b/calico-cloud/observability/elastic/dns/filtering-dns.mdx @@ -1,5 +1,5 @@ --- -description: Suppress DNS logs of low significance using filters. +description: Suppress low-value Calico Cloud DNS log entries with Fluentd filters configured through a ConfigMap in the operator namespace of connected clusters. --- # Filter DNS logs diff --git a/calico-cloud/observability/elastic/dns/index.mdx b/calico-cloud/observability/elastic/dns/index.mdx index 1d3d366013..82edc1e43e 100644 --- a/calico-cloud/observability/elastic/dns/index.mdx +++ b/calico-cloud/observability/elastic/dns/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure and filter DNS logs. +description: Configure and filter DNS activity logs for Calico Cloud. Review the schema, build Elasticsearch queries, and trim low-value entries. hide_table_of_contents: true --- diff --git a/calico-cloud/observability/elastic/flow/aggregation.mdx b/calico-cloud/observability/elastic/flow/aggregation.mdx index c6917d95ff..49562ab6e4 100644 --- a/calico-cloud/observability/elastic/flow/aggregation.mdx +++ b/calico-cloud/observability/elastic/flow/aggregation.mdx @@ -1,5 +1,5 @@ --- -description: Configure flow log aggregation to reduce log volume and costs. +description: Tune Calico Cloud flow log aggregation levels to balance managed Elasticsearch volume and cost against pod and IP visibility for allowed and denied traffic. --- # Configure flow log aggregation diff --git a/calico-cloud/observability/elastic/flow/datatypes.mdx b/calico-cloud/observability/elastic/flow/datatypes.mdx index cd99ffb098..a422b9d332 100644 --- a/calico-cloud/observability/elastic/flow/datatypes.mdx +++ b/calico-cloud/observability/elastic/flow/datatypes.mdx @@ -1,5 +1,5 @@ --- -description: Data that Calico Cloud sends to Elasticsearch. +description: Reference of key/value fields that Calico Cloud sends to Elasticsearch for flow logs, including endpoints, actions, byte counts, and policy verdicts. --- # Flow log data types diff --git a/calico-cloud/observability/elastic/flow/filtering.mdx b/calico-cloud/observability/elastic/flow/filtering.mdx index 42b65cbe32..15738b32c8 100644 --- a/calico-cloud/observability/elastic/flow/filtering.mdx +++ b/calico-cloud/observability/elastic/flow/filtering.mdx @@ -1,5 +1,5 @@ --- -description: Filter Calico Cloud flow logs. +description: Filter Calico Cloud flow logs through Fluentd to drop low-significance traffic and reduce managed Elasticsearch volume and cost. --- # Filter flow logs diff --git a/calico-cloud/observability/elastic/flow/hep.mdx b/calico-cloud/observability/elastic/flow/hep.mdx index 0b7f4a787e..05505e54de 100644 --- a/calico-cloud/observability/elastic/flow/hep.mdx +++ b/calico-cloud/observability/elastic/flow/hep.mdx @@ -1,5 +1,5 @@ --- -description: Enable hostendpoint reporting in flow logs. +description: Turn on host endpoint reporting in Calico Cloud flow logs to gain visibility into traffic at HostEndpoint interfaces on Kubernetes nodes. --- # Enable HostEndpoint reporting in flow logs diff --git a/calico-cloud/observability/elastic/flow/index.mdx b/calico-cloud/observability/elastic/flow/index.mdx index 87603be8db..499213e9b1 100644 --- a/calico-cloud/observability/elastic/flow/index.mdx +++ b/calico-cloud/observability/elastic/flow/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure, filter, and aggregate flow logs. +description: Configure, filter, and aggregate Calico Cloud flow logs. Add host endpoint, process path, and TCP socket statistics from managed Elasticsearch. hide_table_of_contents: true --- diff --git a/calico-cloud/observability/elastic/flow/processpath.mdx b/calico-cloud/observability/elastic/flow/processpath.mdx index 87c4bef1aa..8b42ebdbad 100644 --- a/calico-cloud/observability/elastic/flow/processpath.mdx +++ b/calico-cloud/observability/elastic/flow/processpath.mdx @@ -1,5 +1,5 @@ --- -description: Get visibility into process-level network activity in flow logs. +description: Add process executable paths and arguments to Calico Cloud flow logs with eBPF kprobe programs for process-level visibility into network activity. --- # Enable process-level information in flow logs diff --git a/calico-cloud/observability/elastic/flow/tcpstats.mdx b/calico-cloud/observability/elastic/flow/tcpstats.mdx index 6b6830675b..1060875632 100644 --- a/calico-cloud/observability/elastic/flow/tcpstats.mdx +++ b/calico-cloud/observability/elastic/flow/tcpstats.mdx @@ -1,5 +1,5 @@ --- -description: Enabling TCP socket stats information in flow logs +description: Add TCP socket statistics to Calico Cloud flow logs with eBPF programs that capture round-trip time, retransmits, and other per-socket metrics. --- # Enabling TCP socket stats in flow logs diff --git a/calico-cloud/observability/elastic/index.mdx b/calico-cloud/observability/elastic/index.mdx index b9ffce8ce5..c29eb2e2d8 100644 --- a/calico-cloud/observability/elastic/index.mdx +++ b/calico-cloud/observability/elastic/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure logs for visibility in the web console. +description: Configure managed Elasticsearch logs for Calico Cloud so the web console and Kibana can surface flow, DNS, audit, and L7 data from connected clusters. hide_table_of_contents: true --- diff --git a/calico-cloud/observability/elastic/l7/configure.mdx b/calico-cloud/observability/elastic/l7/configure.mdx index 1ca3f8a214..419776be27 100644 --- a/calico-cloud/observability/elastic/l7/configure.mdx +++ b/calico-cloud/observability/elastic/l7/configure.mdx @@ -1,5 +1,5 @@ --- -description: Configure and aggregate L7 logs. +description: Deploy Envoy and aggregate Calico Cloud L7 logs to monitor HTTP traffic patterns between application workloads on connected clusters. --- # Configure L7 logs diff --git a/calico-cloud/observability/elastic/l7/datatypes.mdx b/calico-cloud/observability/elastic/l7/datatypes.mdx index 580ea2cec7..88f60d50c5 100644 --- a/calico-cloud/observability/elastic/l7/datatypes.mdx +++ b/calico-cloud/observability/elastic/l7/datatypes.mdx @@ -1,5 +1,5 @@ --- -description: L7 data that Calico Cloud sends to Elasticsearch. +description: Reference of key/value fields that Calico Cloud sends to Elasticsearch for L7 logs, including durations, byte counts, and HTTP request metadata. --- # L7 log data types diff --git a/calico-cloud/observability/elastic/l7/index.mdx b/calico-cloud/observability/elastic/l7/index.mdx index 19164b2d05..d3b80a9a85 100644 --- a/calico-cloud/observability/elastic/l7/index.mdx +++ b/calico-cloud/observability/elastic/l7/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure Elasticsearch L7 logs. +description: Configure L7 application traffic logs for Calico Cloud. Deploy Envoy, set aggregation, and review the Elasticsearch L7 log schema for connected clusters. hide_table_of_contents: true --- diff --git a/calico-cloud/observability/elastic/overview.mdx b/calico-cloud/observability/elastic/overview.mdx index 826d6924ec..be619f8199 100644 --- a/calico-cloud/observability/elastic/overview.mdx +++ b/calico-cloud/observability/elastic/overview.mdx @@ -1,5 +1,5 @@ --- -description: Summary of the out-of-box features for Calico Cloud logs. +description: Calico Cloud uses managed Elasticsearch and Kibana for flow, DNS, audit, BGP, and L7 logs with workload context, RBAC, and archival to external SIEMs. --- # Overview diff --git a/calico-cloud/observability/index.mdx b/calico-cloud/observability/index.mdx index 1d816780be..f3b8ce1230 100644 --- a/calico-cloud/observability/index.mdx +++ b/calico-cloud/observability/index.mdx @@ -1,5 +1,5 @@ --- -description: Use Elasticsearch logs for visibility into all network traffic with Kubernetes context. +description: Observe and troubleshoot connected clusters with Calico Cloud web console dashboards, Service Graph, packet capture, and managed Elasticsearch logs. hide_table_of_contents: true --- diff --git a/calico-cloud/observability/iptables.mdx b/calico-cloud/observability/iptables.mdx index 988c211636..5cc5524772 100644 --- a/calico-cloud/observability/iptables.mdx +++ b/calico-cloud/observability/iptables.mdx @@ -1,5 +1,5 @@ --- -description: Learn how policy audit mode rules can affect the number of iptables logs. +description: Reference explaining how Calico Cloud policy audit mode and the Log rule action influence iptables log volume on connected cluster nodes. --- # iptables logs diff --git a/calico-cloud/observability/kibana.mdx b/calico-cloud/observability/kibana.mdx index 03af52a5f6..956686c439 100644 --- a/calico-cloud/observability/kibana.mdx +++ b/calico-cloud/observability/kibana.mdx @@ -1,5 +1,5 @@ --- -description: Learn the basics of using Elasticsearch logs and Kibana to gain visibility and troubleshoot. +description: Use Kibana with Calico Cloud Elasticsearch to explore flow, L7, audit, BGP, DNS, and intrusion detection event logs from connected clusters. --- # Kibana dashboards and logs diff --git a/calico-cloud/observability/kube-audit.mdx b/calico-cloud/observability/kube-audit.mdx index f531d63427..0c46e65921 100644 --- a/calico-cloud/observability/kube-audit.mdx +++ b/calico-cloud/observability/kube-audit.mdx @@ -1,5 +1,5 @@ --- -description: Enable Kubernetes audit logs on changes to Kubernetes resources. +description: Turn on Kubernetes API audit logging for Calico Cloud connected clusters so security teams can review changes to pods, namespaces, and network policies. --- # Kubernetes audit logs diff --git a/calico-cloud/observability/packetcapture.mdx b/calico-cloud/observability/packetcapture.mdx index b990a362f5..e99031de8e 100644 --- a/calico-cloud/observability/packetcapture.mdx +++ b/calico-cloud/observability/packetcapture.mdx @@ -1,5 +1,5 @@ --- -description: Capture live traffic for debugging microservices and application interaction. +description: Capture live pod traffic in Calico Cloud connected clusters from Service Graph or the CLI and export pcap files to Wireshark for analysis. --- # Packet capture diff --git a/calico-cloud/observability/visualize-traffic.mdx b/calico-cloud/observability/visualize-traffic.mdx index ba08b8c7dc..a5dc6462dc 100644 --- a/calico-cloud/observability/visualize-traffic.mdx +++ b/calico-cloud/observability/visualize-traffic.mdx @@ -1,5 +1,5 @@ --- -description: Learn the power of network sets. +description: Visualize cluster traffic to and from external endpoints in Calico Cloud Service Graph with network sets that group external IP ranges by purpose. --- # Visualize traffic to and from a cluster diff --git a/calico-enterprise/observability/alerts.mdx b/calico-enterprise/observability/alerts.mdx index 1d44ec4f72..1f5eceaed3 100644 --- a/calico-enterprise/observability/alerts.mdx +++ b/calico-enterprise/observability/alerts.mdx @@ -1,5 +1,5 @@ --- -description: Manage alerts and events for Calico Enterprise features. +description: Configure alerts and review alert events for Calico Enterprise features from the Manager UI or CLI. Use built-in templates for visibility and security. --- # Manage alerts diff --git a/calico-enterprise/observability/dashboards.mdx b/calico-enterprise/observability/dashboards.mdx index c08918b38a..b81a0d059a 100644 --- a/calico-enterprise/observability/dashboards.mdx +++ b/calico-enterprise/observability/dashboards.mdx @@ -1,5 +1,5 @@ --- -description: Dashboards help you see what's going on in your cluster. See how your cluster is performing and visualize your system's log data. +description: Visualize cluster activity in the Calico Enterprise Manager UI with prebuilt dashboards for cluster health, policy, DNS, and L7 log data. --- import Screenshot from '/src/___new___/components/Screenshot' diff --git a/calico-enterprise/observability/elastic/archive-storage.mdx b/calico-enterprise/observability/elastic/archive-storage.mdx index abcb1c731e..79de021818 100644 --- a/calico-enterprise/observability/elastic/archive-storage.mdx +++ b/calico-enterprise/observability/elastic/archive-storage.mdx @@ -1,5 +1,5 @@ --- -description: Archive logs to Syslog, Splunk, or Amazon S3 for maintaining compliance data. +description: Forward Calico Enterprise flow, DNS, audit, and L7 logs to Syslog, Splunk, or Amazon S3 to retain compliance data beyond in-cluster Elasticsearch retention. --- # Archive logs diff --git a/calico-enterprise/observability/elastic/audit-overview.mdx b/calico-enterprise/observability/elastic/audit-overview.mdx index 519f559ada..bb30451565 100644 --- a/calico-enterprise/observability/elastic/audit-overview.mdx +++ b/calico-enterprise/observability/elastic/audit-overview.mdx @@ -1,5 +1,5 @@ --- -description: Calico Enterprise audit logs provide data on changes to resources. +description: Calico Enterprise audit logs record changes to network policies, tiers, network sets, host endpoints, and other resources for security and compliance review. --- # Audit logs diff --git a/calico-enterprise/observability/elastic/bgp.mdx b/calico-enterprise/observability/elastic/bgp.mdx index 0d44aff407..042d0fa57d 100644 --- a/calico-enterprise/observability/elastic/bgp.mdx +++ b/calico-enterprise/observability/elastic/bgp.mdx @@ -1,5 +1,5 @@ --- -description: Key/value pairs of BGP activity logs and how to construct queries. +description: Reference of key/value fields in Calico Enterprise BGP activity logs stored in Elasticsearch, with sample queries for IPv4, IPv6, and per-node lookups. --- # BGP logs diff --git a/calico-enterprise/observability/elastic/dns/dns-logs.mdx b/calico-enterprise/observability/elastic/dns/dns-logs.mdx index 9dab95ac19..c10e625cf7 100644 --- a/calico-enterprise/observability/elastic/dns/dns-logs.mdx +++ b/calico-enterprise/observability/elastic/dns/dns-logs.mdx @@ -1,5 +1,5 @@ --- -description: Key/value pairs of DNS activity logs and how to construct queries. +description: Reference of key/value fields in Calico Enterprise DNS activity logs stored in Elasticsearch, with guidance for constructing client and query lookups. --- # Configure DNS logs diff --git a/calico-enterprise/observability/elastic/dns/filtering-dns.mdx b/calico-enterprise/observability/elastic/dns/filtering-dns.mdx index c40c2fef01..6d0b4d441b 100644 --- a/calico-enterprise/observability/elastic/dns/filtering-dns.mdx +++ b/calico-enterprise/observability/elastic/dns/filtering-dns.mdx @@ -1,5 +1,5 @@ --- -description: Suppress DNS logs of low significance using filters. +description: Suppress low-value Calico Enterprise DNS log entries with Fluentd filters configured through a ConfigMap in the operator namespace. --- # Filter DNS logs diff --git a/calico-enterprise/observability/elastic/dns/index.mdx b/calico-enterprise/observability/elastic/dns/index.mdx index 179b4b03db..c5ebf73687 100644 --- a/calico-enterprise/observability/elastic/dns/index.mdx +++ b/calico-enterprise/observability/elastic/dns/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure and filter DNS logs. +description: Configure and filter DNS activity logs for Calico Enterprise. Review the schema, build Elasticsearch queries, and trim low-value entries. hide_table_of_contents: true --- diff --git a/calico-enterprise/observability/elastic/flow/aggregation.mdx b/calico-enterprise/observability/elastic/flow/aggregation.mdx index 0a4010e0e5..84e48781d4 100644 --- a/calico-enterprise/observability/elastic/flow/aggregation.mdx +++ b/calico-enterprise/observability/elastic/flow/aggregation.mdx @@ -1,5 +1,5 @@ --- -description: Configure flow log aggregation to reduce log volume and costs. +description: Tune Calico Enterprise flow log aggregation levels to balance Elasticsearch volume and cost against pod and IP visibility for allowed and denied traffic. --- # Configure flow log aggregation diff --git a/calico-enterprise/observability/elastic/flow/datatypes.mdx b/calico-enterprise/observability/elastic/flow/datatypes.mdx index 046b452cee..a9bb9576fa 100644 --- a/calico-enterprise/observability/elastic/flow/datatypes.mdx +++ b/calico-enterprise/observability/elastic/flow/datatypes.mdx @@ -1,5 +1,5 @@ --- -description: Data that Calico Enterprise sends to Elasticsearch. +description: Reference of key/value fields that Calico Enterprise sends to Elasticsearch for flow logs, including endpoints, actions, byte counts, and policy verdicts. --- # Flow log data types diff --git a/calico-enterprise/observability/elastic/flow/filtering.mdx b/calico-enterprise/observability/elastic/flow/filtering.mdx index 01d094a8bd..bb10e35561 100644 --- a/calico-enterprise/observability/elastic/flow/filtering.mdx +++ b/calico-enterprise/observability/elastic/flow/filtering.mdx @@ -1,5 +1,5 @@ --- -description: Filter Calico Enterprise flow logs. +description: Filter Calico Enterprise flow logs through Fluentd to drop low-significance traffic and reduce in-cluster Elasticsearch volume and cost. --- # Filter flow logs diff --git a/calico-enterprise/observability/elastic/flow/hep.mdx b/calico-enterprise/observability/elastic/flow/hep.mdx index 0b7f4a787e..9f74b31264 100644 --- a/calico-enterprise/observability/elastic/flow/hep.mdx +++ b/calico-enterprise/observability/elastic/flow/hep.mdx @@ -1,5 +1,5 @@ --- -description: Enable hostendpoint reporting in flow logs. +description: Turn on host endpoint reporting in Calico Enterprise flow logs to gain visibility into traffic at HostEndpoint interfaces on Kubernetes nodes. --- # Enable HostEndpoint reporting in flow logs diff --git a/calico-enterprise/observability/elastic/flow/index.mdx b/calico-enterprise/observability/elastic/flow/index.mdx index 87603be8db..ef90f6a6cd 100644 --- a/calico-enterprise/observability/elastic/flow/index.mdx +++ b/calico-enterprise/observability/elastic/flow/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure, filter, and aggregate flow logs. +description: Configure, filter, and aggregate Calico Enterprise flow logs. Add host endpoint, process path, and TCP socket statistics from in-cluster Elasticsearch. hide_table_of_contents: true --- diff --git a/calico-enterprise/observability/elastic/flow/processpath.mdx b/calico-enterprise/observability/elastic/flow/processpath.mdx index 87c4bef1aa..2045d3e961 100644 --- a/calico-enterprise/observability/elastic/flow/processpath.mdx +++ b/calico-enterprise/observability/elastic/flow/processpath.mdx @@ -1,5 +1,5 @@ --- -description: Get visibility into process-level network activity in flow logs. +description: Add process executable paths and arguments to Calico Enterprise flow logs with eBPF kprobe programs for process-level visibility into network activity. --- # Enable process-level information in flow logs diff --git a/calico-enterprise/observability/elastic/flow/tcpstats.mdx b/calico-enterprise/observability/elastic/flow/tcpstats.mdx index 6b6830675b..b0fed167bb 100644 --- a/calico-enterprise/observability/elastic/flow/tcpstats.mdx +++ b/calico-enterprise/observability/elastic/flow/tcpstats.mdx @@ -1,5 +1,5 @@ --- -description: Enabling TCP socket stats information in flow logs +description: Add TCP socket statistics to Calico Enterprise flow logs with eBPF programs that capture round-trip time, retransmits, and other per-socket metrics. --- # Enabling TCP socket stats in flow logs diff --git a/calico-enterprise/observability/elastic/index.mdx b/calico-enterprise/observability/elastic/index.mdx index 94520c9b99..7794196217 100644 --- a/calico-enterprise/observability/elastic/index.mdx +++ b/calico-enterprise/observability/elastic/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure logs for visibility in the web console. +description: Configure in-cluster Elasticsearch logs for Calico Enterprise so the Manager UI, Kibana, and the Elasticsearch API can surface flow, DNS, audit, and L7 data. hide_table_of_contents: true --- diff --git a/calico-enterprise/observability/elastic/l7/configure.mdx b/calico-enterprise/observability/elastic/l7/configure.mdx index a502e1c334..4eb9850911 100644 --- a/calico-enterprise/observability/elastic/l7/configure.mdx +++ b/calico-enterprise/observability/elastic/l7/configure.mdx @@ -1,5 +1,5 @@ --- -description: Configure and aggregate L7 logs. +description: Deploy Envoy and aggregate Calico Enterprise L7 logs to monitor HTTP traffic patterns between application workloads in self-managed clusters. --- # Configure L7 logs diff --git a/calico-enterprise/observability/elastic/l7/datatypes.mdx b/calico-enterprise/observability/elastic/l7/datatypes.mdx index 54658cdf22..478adeeb37 100644 --- a/calico-enterprise/observability/elastic/l7/datatypes.mdx +++ b/calico-enterprise/observability/elastic/l7/datatypes.mdx @@ -1,5 +1,5 @@ --- -description: L7 data that Calico Enterprise sends to Elasticsearch. +description: Reference of key/value fields that Calico Enterprise sends to Elasticsearch for L7 logs, including durations, byte counts, and HTTP request metadata. --- # L7 log data types diff --git a/calico-enterprise/observability/elastic/l7/index.mdx b/calico-enterprise/observability/elastic/l7/index.mdx index 19164b2d05..efbbb13ad7 100644 --- a/calico-enterprise/observability/elastic/l7/index.mdx +++ b/calico-enterprise/observability/elastic/l7/index.mdx @@ -1,5 +1,5 @@ --- -description: Configure Elasticsearch L7 logs. +description: Configure L7 application traffic logs for Calico Enterprise. Deploy Envoy, set aggregation, and review the Elasticsearch L7 log schema. hide_table_of_contents: true --- diff --git a/calico-enterprise/observability/elastic/overview.mdx b/calico-enterprise/observability/elastic/overview.mdx index ba407bf283..2959a397b3 100644 --- a/calico-enterprise/observability/elastic/overview.mdx +++ b/calico-enterprise/observability/elastic/overview.mdx @@ -1,5 +1,5 @@ --- -description: Summary of the out-of-box features for Calico Enterprise logs. +description: Calico Enterprise deploys an in-cluster Elasticsearch and Kibana stack for flow, DNS, audit, BGP, and L7 logs with workload context, RBAC, and archival to SIEMs. --- # Overview diff --git a/calico-enterprise/observability/elastic/rbac-elasticsearch.mdx b/calico-enterprise/observability/elastic/rbac-elasticsearch.mdx index e637d66af5..6844780fa3 100644 --- a/calico-enterprise/observability/elastic/rbac-elasticsearch.mdx +++ b/calico-enterprise/observability/elastic/rbac-elasticsearch.mdx @@ -1,5 +1,5 @@ --- -description: Configure RBAC to control access to Elasticsearch logs and events. +description: Set fine-grained Kubernetes RBAC permissions in Calico Enterprise to control access to Elasticsearch flow, audit, DNS, and intrusion detection event indices. --- # Configure RBAC for Elasticsearch logs and events diff --git a/calico-enterprise/observability/elastic/retention.mdx b/calico-enterprise/observability/elastic/retention.mdx index 6e35a0f457..736209aa9b 100644 --- a/calico-enterprise/observability/elastic/retention.mdx +++ b/calico-enterprise/observability/elastic/retention.mdx @@ -1,5 +1,5 @@ --- -description: Configure how long to retain logs and compliance reports. +description: Set retention windows for Calico Enterprise flow, DNS, audit, BGP, L7, snapshot, and compliance report data in the in-cluster LogStorage resource. --- # Configure data retention diff --git a/calico-enterprise/observability/elastic/troubleshoot.mdx b/calico-enterprise/observability/elastic/troubleshoot.mdx index d2ab57958f..792bf0874f 100644 --- a/calico-enterprise/observability/elastic/troubleshoot.mdx +++ b/calico-enterprise/observability/elastic/troubleshoot.mdx @@ -1,5 +1,5 @@ --- -description: Learn how to troubleshoot common issues with Elasticsearch. +description: Troubleshooting guide for in-cluster Elasticsearch problems in Calico Enterprise covering LogStorage, storage classes, persistent volumes, and diagnostic logs. --- # Troubleshoot logs diff --git a/calico-enterprise/observability/get-started-cem.mdx b/calico-enterprise/observability/get-started-cem.mdx index bd859d094b..8f24a637a7 100644 --- a/calico-enterprise/observability/get-started-cem.mdx +++ b/calico-enterprise/observability/get-started-cem.mdx @@ -1,5 +1,5 @@ --- -description: Tour the main features of the web console. +description: Tour of the Calico Enterprise Manager UI navbar covering dashboards, Service Graph, policies, alerts, Kibana, and packet capture controls. --- # Web console tutorial diff --git a/calico-enterprise/observability/index.mdx b/calico-enterprise/observability/index.mdx index 28b6597381..b23276a22f 100644 --- a/calico-enterprise/observability/index.mdx +++ b/calico-enterprise/observability/index.mdx @@ -1,5 +1,5 @@ --- -description: Use Elasticsearch logs for visibility into all network traffic with Kubernetes context. +description: Observe and troubleshoot self-managed Calico Enterprise clusters with Manager UI dashboards, Service Graph, packet capture, and Elasticsearch logs. hide_table_of_contents: true --- diff --git a/calico-enterprise/observability/iptables.mdx b/calico-enterprise/observability/iptables.mdx index 0ffdb96aca..c059dad608 100644 --- a/calico-enterprise/observability/iptables.mdx +++ b/calico-enterprise/observability/iptables.mdx @@ -1,5 +1,5 @@ --- -description: Learn how policy audit mode rules can affect the number of iptables logs. +description: Reference explaining how Calico Enterprise policy audit mode and the Log rule action affect iptables log volume on cluster nodes. --- # iptables logs diff --git a/calico-enterprise/observability/kibana.mdx b/calico-enterprise/observability/kibana.mdx index bcbadcaebc..f1370d3f81 100644 --- a/calico-enterprise/observability/kibana.mdx +++ b/calico-enterprise/observability/kibana.mdx @@ -1,5 +1,5 @@ --- -description: Learn the basics of using Elasticsearch logs and Kibana to gain visibility and troubleshoot. +description: Use Kibana with Calico Enterprise Elasticsearch to explore flow, L7, audit, BGP, DNS, and intrusion detection event logs across managed clusters. --- # Kibana dashboards and logs diff --git a/calico-enterprise/observability/kube-audit.mdx b/calico-enterprise/observability/kube-audit.mdx index f531d63427..d960f5d801 100644 --- a/calico-enterprise/observability/kube-audit.mdx +++ b/calico-enterprise/observability/kube-audit.mdx @@ -1,5 +1,5 @@ --- -description: Enable Kubernetes audit logs on changes to Kubernetes resources. +description: Turn on Kubernetes API audit logging for Calico Enterprise so security teams can review changes to pods, namespaces, network policies, and other resources. --- # Kubernetes audit logs diff --git a/calico-enterprise/observability/packetcapture.mdx b/calico-enterprise/observability/packetcapture.mdx index 7523053e63..f350593b36 100644 --- a/calico-enterprise/observability/packetcapture.mdx +++ b/calico-enterprise/observability/packetcapture.mdx @@ -1,5 +1,5 @@ --- -description: Capture live traffic for debugging microservices and application interaction. +description: Capture live pod traffic in self-managed Calico Enterprise clusters from Service Graph or the CLI and export pcap files to Wireshark for analysis. --- # Packet capture diff --git a/calico-enterprise/observability/review-unused-network-policies.mdx b/calico-enterprise/observability/review-unused-network-policies.mdx index 2e4a67119f..fd29e36db0 100644 --- a/calico-enterprise/observability/review-unused-network-policies.mdx +++ b/calico-enterprise/observability/review-unused-network-policies.mdx @@ -1,5 +1,5 @@ --- -description: Identify unused network policies and rules to maintain least privilege and reduce compliance risk. +description: Find unused Calico Enterprise network policies and rules with Last Evaluated timestamps in the Manager UI or with calicoctl to maintain least privilege. --- # Review unused network policies diff --git a/calico-enterprise/observability/visualize-traffic.mdx b/calico-enterprise/observability/visualize-traffic.mdx index 820339222e..8e442c57d4 100644 --- a/calico-enterprise/observability/visualize-traffic.mdx +++ b/calico-enterprise/observability/visualize-traffic.mdx @@ -1,5 +1,5 @@ --- -description: Learn the power of network sets. +description: Use Service Graph in the Calico Enterprise Manager UI to visualize namespace, service, and pod communication patterns and investigate traffic flows. --- # Network visualization diff --git a/calico/observability/enable-whisker.mdx b/calico/observability/enable-whisker.mdx index f73a2f45cc..e9986c7536 100644 --- a/calico/observability/enable-whisker.mdx +++ b/calico/observability/enable-whisker.mdx @@ -1,5 +1,5 @@ --- -description: Enable the flow logs API and Calico Whisker +description: Activate the Goldmane flow logs API and the Calico Whisker web console in Calico Open Source clusters that were upgraded from earlier versions. title: Enable flow logs --- diff --git a/calico/observability/flow-logs-api.mdx b/calico/observability/flow-logs-api.mdx index d0dc685d89..ae68714c98 100644 --- a/calico/observability/flow-logs-api.mdx +++ b/calico/observability/flow-logs-api.mdx @@ -1,5 +1,5 @@ --- -description: Learn about the flow logs API. +description: Reference for the Goldmane flow logs API in Calico Open Source. Retrieve aggregated traffic data, policy hits, and packet and byte counts over gRPC. --- # Flow logs API diff --git a/calico/observability/index.mdx b/calico/observability/index.mdx index d704537f84..690310d67e 100644 --- a/calico/observability/index.mdx +++ b/calico/observability/index.mdx @@ -1,5 +1,5 @@ --- -description: View flow logs and policy metrics to better understand your network traffic. +description: Observe Kubernetes network traffic in Calico Open Source with the Goldmane flow logs API and the Calico Whisker in-cluster web console. hide_table_of_contents: true --- diff --git a/calico/observability/view-flow-logs.mdx b/calico/observability/view-flow-logs.mdx index d29464e72a..bdfa056ecb 100644 --- a/calico/observability/view-flow-logs.mdx +++ b/calico/observability/view-flow-logs.mdx @@ -1,5 +1,5 @@ --- -description: View flow logs in the Calico Whisker web console. +description: Inspect aggregated network flow logs in the Calico Whisker in-cluster web console for Calico Open Source. Filter by source, destination, and policy verdicts. title: View flow logs ---